$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa File: 81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa (raw, json) Hash identifier: KI4oECkno4wmgyEi0v5qFuLAqOlTA0zawnQL/zer0m4= Subject key identifier: 5F:D1:D5:F9:A3:24:13:1D:16:CA:5C:28:FE:74:14:A3:FD:13:94:6E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 631826D956227CAEEEC4E311887D4BC63B0337C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa Signing time: Wed 22 Oct 2025 00:40:15 +0000 ROA not before: Wed 22 Oct 2025 00:40:15 +0000 ROA not after: Wed 26 Nov 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 05 Nov 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:18:26:d9:56:22:7c:ae:ee:c4:e3:11:88:7d:4b:c6:3b:03:37:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Oct 22 00:40:15 2025 GMT Not After : Nov 26 23:59:59 2025 GMT Subject: serialNumber=08d2087aef8f7cbe2738d0bd1fd3a0c38128638f5d55b2e9424fc090a595fa50, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:42:ea:7f:7a:7f:0b:ff:5b:32:f8:d4:31:b4: f1:13:93:c0:07:47:e5:49:4a:be:f2:f0:64:0e:61: c4:47:3a:1d:3d:2e:28:6f:00:b3:f2:4b:a0:32:20: 41:e1:8a:cc:8c:96:c3:6e:52:bd:d0:31:46:29:03: 34:f0:0e:2d:83:fc:e8:44:1e:73:10:4a:46:18:69: 48:68:0c:48:b4:2f:69:47:13:d3:29:d1:41:85:5e: 02:3f:71:cb:44:ef:72:e9:b5:93:43:dc:32:5b:79: 4c:4e:a3:38:83:c0:9e:c6:5c:0d:bc:da:40:8e:bb: 17:c3:3b:5e:f4:ae:00:e6:d6:1d:7d:28:e6:70:94: 32:25:59:4d:2a:e6:69:90:79:a3:43:89:27:c7:55: 64:b3:6c:e5:7f:40:7b:18:bf:23:11:3e:17:10:2a: 69:71:bd:bb:f8:1f:ed:64:91:f7:70:70:f3:69:3e: 35:39:27:48:ba:2c:c5:c3:76:b5:07:d8:9b:eb:4f: d0:f4:a6:23:4a:0c:5f:bd:b9:ca:9a:a8:7b:cf:6a: 9d:cf:f2:b9:e7:5c:07:d5:e7:06:ed:6d:d2:ef:f5: 00:29:1a:9f:4a:1f:25:62:7b:54:9e:68:5d:a9:75: 05:bc:08:4f:bf:ba:86:2f:e5:89:db:1b:dc:5d:f2: ce:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D1:D5:F9:A3:24:13:1D:16:CA:5C:28:FE:74:14:A3:FD:13:94:6E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10f::/48 Signature Algorithm: sha256WithRSAEncryption 72:88:cf:c5:8f:8f:15:2e:dc:b9:ce:5f:cf:41:66:12:fc:70: 8d:56:0f:d1:12:47:ea:5d:98:d3:3d:d3:84:ca:32:c8:ea:83: 72:7c:30:d7:be:65:25:9c:bb:a0:94:2a:97:ed:1a:dc:bd:9e: ac:1b:70:72:8b:95:f8:2c:f8:c8:b5:32:a6:8d:c2:94:b4:a0: cc:98:cf:ef:dc:80:8c:cd:66:2c:9e:65:2e:bd:13:ed:a6:d8: 0f:cf:d7:54:4d:d5:f7:04:63:96:bc:ac:0c:83:d9:67:fe:98: 9e:65:0e:4a:2c:54:6f:83:48:3c:4b:57:6b:b7:a0:7d:93:fc: b9:35:86:dc:3b:b9:5c:a6:f9:13:9a:c7:ab:06:a5:6e:6a:8d: fa:67:68:f5:65:eb:cf:62:f7:d3:64:f8:e3:a0:10:a2:57:ef: 13:f0:7c:3e:e4:1a:3a:32:09:44:6f:36:98:74:7f:63:75:e9: 65:8d:63:bf:59:f2:e4:6a:f2:78:85:8f:73:52:9a:29:34:6e: 82:13:cb:37:d8:af:17:9b:b3:92:c8:70:88:15:aa:76:e7:00: cc:2e:a9:5f:15:64:92:a3:cc:02:26:a9:86:9f:c1:d5:6b:74: b3:94:b4:84:32:f9:e3:99:4e:6f:e9:23:d7:69:57:fa:53:60: 53:b3:2c:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYxgm2VYifK7uxOMRiH1LxjsDN8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUxMDIyMDA0MDE1WhcNMjUxMTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGQyMDg3YWVmOGY3Y2JlMjczOGQwYmQxZmQzYTBjMzgx Mjg2MzhmNWQ1NWIyZTk0MjRmYzA5MGE1OTVmYTUwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuQup/en8L/1sy+NQxtPETk8AHR+VJSr7y8GQOYcRHOh09 LihvALPyS6AyIEHhisyMlsNuUr3QMUYpAzTwDi2D/OhEHnMQSkYYaUhoDEi0L2lH E9Mp0UGFXgI/cctE73LptZND3DJbeUxOoziDwJ7GXA282kCOuxfDO170rgDm1h19 KOZwlDIlWU0q5mmQeaNDiSfHVWSzbOV/QHsYvyMRPhcQKmlxvbv4H+1kkfdwcPNp PjU5J0i6LMXDdrUH2JvrT9D0piNKDF+9ucqaqHvPap3P8rnnXAfV5wbtbdLv9QAp Gp9KHyVie1SeaF2pdQW8CE+/uoYv5YnbG9xd8s4pAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUX9HV+aMkEx0Wylwo/nQUo/0TlG4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgxZWE2ZTE3LWUwODAtNGUxMi1hYjE2LTg5ZmUxM2NlNWFlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q8wDQYJKoZIhvcNAQELBQADggEBAHKIz8WPjxUu3LnOX89BZhL8 cI1WD9ESR+pdmNM904TKMsjqg3J8MNe+ZSWcu6CUKpftGty9nqwbcHKLlfgs+Mi1 MqaNwpS0oMyYz+/cgIzNZiyeZS69E+2m2A/P11RN1fcEY5a8rAyD2Wf+mJ5lDkos VG+DSDxLV2u3oH2T/Lk1htw7uVym+ROax6sGpW5qjfpnaPVl689i99Nk+OOgEKJX 7xPwfD7kGjoyCURvNph0f2N16WWNY79Z8uRq8niFj3NSmik0boITyzfYrxebs5LI cIgVqnbnAMwuqV8VZJKjzAImqYafwdVrdLOUtIQy+eOZTm/pI9dpV/pTYFOzLJU= -----END CERTIFICATE-----Generated at Tue Nov 4 04:43:52 2025 by rpki-client